Aboutme
Hello my name is Thomas Cope and for six years now I have been working as an Infrastructure and Security Specialist at IBM, while studying part time at Oxford University for a Masters Degree in Software and Systems Security. I am a programming and electronics enthusiast who enjoys working on projects in my spare time - you can learn more in the "Projects" sections below. I have a keen interest in Security, designing and building secure systems as well as performing pen tests on them. I enjoy "Capture the Flag" events and Security research. I am CISSP Certified as well as a Redhat System Engineer. I use theses skills extensively at work and for the support of this server which is used to hosts both myself and a friend's projects (Server Status). In my spare time I am a STEM Ambassador and an Associatsional (MBCS) Member of the British Computer Society. I play games such as TF2, Minecraft and Badminton, and enjoy Skiing when I get the chance. Feel free to drop me a line either on my Twitter or Linkedin. Plus I use GPG if you want to send me encrypted Mail (PubKey).
Projects
I have numerous ongoing projects all of which you can find out more below.
IBM HMC Exploit
from Restricted user to root in one line
A short write up about a security vulnerability I discovered while working on a project which allows for an authenticated user to break out of the restricted HMC environment and elevate their permissions to root.
ssh_ws
This is a demonstration of a proof of concept I built to tunnel ssh traffic over web-sockets. I build both a client and server application to achieve this.
bad_scp
A Proof of Concept of the Linux command 'scp' client side vulnerabilities (CVE-2019-6111 + CVE-2019-6110)
Oxford Foundry CTF
A CTF I took part in over the weekend
Shell Site
Interactive Linux Command Line Version of this site
Using a dynamic 'filesystem' both this site and the Linux command line version adapt their content to load new projects and pages. Its all quite overly complicated but it was fun to write :)
TSTP
Toms Sentry Tracking Program
This is the 3rd incarnation on my Sentry Tracking program. Using opencv and C++, this project dynamically scans a webcam or video feed and tracks one or more targets
Snap Share
A in memory only, temporary file sharing service and API
I wanted to make a way to share files easily and a reason to learn memcached. This project is the combination of both.
SecNet
An Example Website implementing good security practice for both HTTP Headers and SSL/TLS Configuration to provide a benchmark of what a secure web server configuration should look like.
TVBG
Toms Very Basic Game
One of the largest program I've written. A simple space shooter written in C++ using OpenGL and a custom made game engine.
Arduino Minecraft Monitor
A helpful Arduino Library for polling Minecraft Servers
A custom made Arduino library to query a Minecraft server using the bespoke UDP query API.
CCB
Conference Call Bingo
A fun game to play while on a Conference Call.
qload_convert
Mass MQ Qload Converting Program
A tool to convert a large number of files into a more 'qload' friendly format. Written in C it's blazingly fast and easy to use.
TVTS
Toms Vehicle Tracking System (Arduino GPS)
A Arduino based GPS and GRSM Tracking System using a custom built library for the Maplin GSMShield. The Arduino acquires a GPS lock, reads the value and sends the data encrypted via UDP to a collection server.
Arduino Door Lock
Fingerprint and Android Style Pattern Lock
A Arduino door lock using a Fingerprint scanner and a 7 inch touch screen.
Arduino Iron Key
A Arduino based portable HSM
A Arduino version of the Secure memory stick 'IronKey'. The Arduino acts as a HSM (Hardware Security Module) between the computer and the on board SD card shield. A Java app is used to send commands to Arduino. The Arduino enforces authentication and encryption using its on board EPPROM. After authentication, the Arduino encrypts and decrypts all of the data on the fly as it is written to a SD Card. After 10 incorrect password attempts the Arduino wipes its EPPROM destroying the Encryption key.
Golang Screen Saver
A snake style terminal screen saver written in Golang
A really simple terminal screen saver written in Golang.
SPLMIAWE
Simple Programming Language Made in a Weekend
A really simple scripting like language made in a weekend. With dynamic variable allocation and cross platform support for Windows and Linux. My first C++ project to be completely cross platform using gcc and mingw.
This Server
Tails of Setting up this Server
Running this server has taught me a lot. Jenkins, Minecraft, MQTT, Mail, Nginx, KVM, HAProxy, PHP, Mysql and more.
Pastejacking 2
A expansion on the orignal pastejacking attack using bash tricks
This is a demo of a new pastejacking attack using bash and command link tricks to fool the user into executing malicious code.
Blog
I make occasional posting on the IBM UK Apprentice Blog which you can check out here.
Languages
I have dabbled in many different programming languages and are keen to learn more. The list below covers the ones I use on a Frequent Basics...
- C++
- C
- Erlang
- Bash/KSH
- Javascript
- Golang
- PHP
- Visual Basic
- Java
- C#
- Arduino
- Processing
- Python
- Perl
- HTML5
- CSS
- LaTeX
Skills
Tools / Software:
- GIT
- Puppet
- Jira
- Bitbucket
- Zabbix
- Nginx
- Forum Sentry
- Entrust PKI
- Wireshark
- OpenSSL
- GSKit
- Jenkins
- PostgreSQL
- Systemd
- Firewalld
- Network Manager
- GPG
- Yubikey
- Postfix
- Mosquitto(MQTT)
- LDAP
- vi/vim
- saltstack
- Postfix
- PAM
- SSSD
- Memcached
- Gemalto SafeNet Luna Network HSM
- OpenID Connect / OAuth / SAML
- Keycloak
- Docker
- Kubernetes
- LetsEncrypt / Certbot / Boulder
- FreeIPA
- JWT / JWE / JWS
- Hashicorp Vault
- Datapower
- Security Directory Server
- Security Access Manager
- HTTP Server
- Webseal
- HMC
- pSeries
- MQ
- AIX
- Redhat
- Centos
- FreeBSD
- Ubuntu
- Debian
Qualificiations
- (ISC)2 CISSP Certified
- AWS Certified Solutions Architect - Associate
- Redhat Certified System Engineer (RHEL 7)
- Redhat Certified System Administrator (RHEL 7)
- CompTIA Security+
- CREST Certified Infrastructure Pen Tester
- CREST Certified Wireless Pen Tester
Certifications
- Java Programming Language Java SE 6 - QA
- Advance Java OOP Threading and Serialization in Java OOP - QA
- C++ OOP - QA
- C# Threading, LINQ, Forms - QA
- IBM Badge - Get started with Kubernetes and IBM Cloud Container Service
- IBM Badge - Government Insights & Solutions (Silver)
- IBM Badge - Docker Essentials: Extend Your Apps With Containers
- IBM Badge - Mentor
- IBM Badge - Recognized Teacher/ Educator
Awards
- British Computer Society UK IT Apprentice of the Year 2015
- Apprentice of the Year 2015 (South East Region England)>
- Advance Apprentice of the Year 2014 (South Central Region England)
- World Skills Show UK Network Security Bronze Medal